Filtered by vendor Dell
Subscriptions
Filtered by product Powerscale Onefs
Subscriptions
Total
37 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2023-32494 | 1 Dell | 1 Powerscale Onefs | 2024-10-08 | 6.7 Medium |
Dell PowerScale OneFS, 8.0.x-9.5.x, contains an improper handling of insufficient privileges vulnerability. A local privileged attacker could potentially exploit this vulnerability, leading to elevation of privilege and affect in compliance mode also. | ||||
CVE-2023-32495 | 1 Dell | 1 Powerscale Onefs | 2024-10-08 | 7.8 High |
Dell PowerScale OneFS, 8.2.x-9.5.x, contains a exposure of sensitive information to an unauthorized Actor vulnerability. An authorized local attacker could potentially exploit this vulnerability, leading to escalation of privileges. | ||||
CVE-2023-32486 | 1 Dell | 1 Powerscale Onefs | 2024-10-08 | 6.7 Medium |
Dell PowerScale OneFS 9.5.x version contain a privilege escalation vulnerability. A low privilege local attacker could potentially exploit this vulnerability, leading to escalation of privileges. | ||||
CVE-2023-32487 | 1 Dell | 1 Powerscale Onefs | 2024-10-08 | 7.8 High |
Dell PowerScale OneFS, 8.2.x - 9.5.0.x, contains an elevation of privilege vulnerability. A low privileged local attacker could potentially exploit this vulnerability, leading to denial of service, code execution and information disclosure. | ||||
CVE-2023-32488 | 1 Dell | 1 Powerscale Onefs | 2024-10-08 | 5.3 Medium |
Dell PowerScale OneFS, 8.2.x-9.5.0.x, contains an information disclosure vulnerability in NFS. A low privileged attacker could potentially exploit this vulnerability, leading to information disclosure. | ||||
CVE-2023-32489 | 1 Dell | 1 Powerscale Onefs | 2024-10-08 | 6.7 Medium |
Dell PowerScale OneFS 8.2x -9.5x contains a privilege escalation vulnerability. A local attacker with high privileges could potentially exploit this vulnerability, to bypass mode protections and gain elevated privileges. | ||||
CVE-2023-32490 | 1 Dell | 1 Powerscale Onefs | 2024-10-08 | 6.7 Medium |
Dell PowerScale OneFS 8.2x -9.5x contains an improper privilege management vulnerability. A high privilege local attacker could potentially exploit this vulnerability, leading to system takeover. | ||||
CVE-2023-32493 | 1 Dell | 1 Powerscale Onefs | 2024-10-08 | 7.3 High |
Dell PowerScale OneFS, 9.5.0.x, contains a protection mechanism bypass vulnerability. An unprivileged, remote attacker could potentially exploit this vulnerability, leading to denial of service, information disclosure and remote execution. | ||||
CVE-2023-32457 | 1 Dell | 1 Powerscale Onefs | 2024-10-02 | 7.5 High |
Dell PowerScale OneFS, versions 8.2.2.x-9.5.0.x, contains an improper privilege management vulnerability. A remote attacker with low privileges could potentially exploit this vulnerability, leading to escalation of privileges. | ||||
CVE-2023-32491 | 1 Dell | 1 Powerscale Onefs | 2024-10-01 | 6.3 Medium |
Dell PowerScale OneFS 9.5.0.x, contains an insertion of sensitive information into log file vulnerability in SNMPv3. A low privileges user could potentially exploit this vulnerability, leading to information disclosure. | ||||
CVE-2023-32492 | 1 Dell | 1 Powerscale Onefs | 2024-10-01 | 5.3 Medium |
Dell PowerScale OneFS 9.5.0.x contains an incorrect default permissions vulnerability. A low-privileged local attacker could potentially exploit this vulnerability, leading to information disclosure or allowing to modify files. | ||||
CVE-2022-31229 | 1 Dell | 1 Powerscale Onefs | 2024-09-17 | 9.6 Critical |
Dell PowerScale OneFS, 8.2.x through 9.3.0.x, contain an error message with sensitive information. An administrator could potentially exploit this vulnerability, leading to disclosure of sensitive information. This sensitive information can be used to access sensitive resources. | ||||
CVE-2021-21553 | 1 Dell | 1 Powerscale Onefs | 2024-09-17 | 7.3 High |
Dell PowerScale OneFS versions 8.1.0-9.1.0 contain an Incorrect User Management vulnerability.under some specific conditions, this can allow the CompAdmin user to elevate privileges and break out of Compliance mode. This is a critical vulnerability and Dell recommends upgrading at the earliest. | ||||
CVE-2021-36350 | 1 Dell | 1 Powerscale Onefs | 2024-09-17 | 5.9 Medium |
Dell PowerScale OneFS, versions 8.2.2-9.3.0.x, contain an authentication bypass by primary weakness in one of the authentication factors. A remote unauthenticated attacker may potentially exploit this vulnerability and bypass one of the factors of authentication. | ||||
CVE-2021-21526 | 1 Dell | 1 Powerscale Onefs | 2024-09-17 | 6 Medium |
Dell PowerScale OneFS 8.1.0 - 9.1.0 contains a privilege escalation in SmartLock compliance mode that may allow compadmin to execute arbitrary commands as root. | ||||
CVE-2022-29098 | 1 Dell | 1 Powerscale Onefs | 2024-09-16 | 8.1 High |
Dell PowerScale OneFS versions 8.2.0.x through 9.3.0.x, contain a weak password requirement vulnerability. An administrator may create an account with no password. A remote attacker may potentially exploit this leading to a user account compromise. | ||||
CVE-2021-21567 | 1 Dell | 1 Powerscale Onefs | 2024-09-16 | 7.8 High |
Dell PowerScale OneFS 9.1.0.x contains an improper privilege management vulnerability. It may allow an authenticated user with ISI_PRIV_LOGIN_SSH and/or ISI_PRIV_LOGIN_CONSOLE to elevate privilege. | ||||
CVE-2021-21565 | 1 Dell | 1 Powerscale Onefs | 2024-09-16 | 5.3 Medium |
Dell PowerScale OneFS versions 9.1.0.3 and earlier contain a denial of service vulnerability. SmartConnect had an error condition that may be triggered to loop, using CPU and potentially preventing other SmartConnect DNS responses. | ||||
CVE-2022-31230 | 1 Dell | 1 Powerscale Onefs | 2024-09-16 | 8.1 High |
Dell PowerScale OneFS, versions 8.2.x-9.2.x, contain broken or risky cryptographic algorithm. A remote unprivileged malicious attacker could potentially exploit this vulnerability, leading to full system access. | ||||
CVE-2023-43087 | 1 Dell | 1 Powerscale Onefs | 2024-09-05 | 4.3 Medium |
Dell PowerScale OneFS 8.2.x, 9.0.0.x-9.5.0.x contains an improper handling of insufficient permissions. A low privileged remote attacker could potentially exploit this vulnerability to cause information disclosure. |